www::mechanize doesn't connect to some XHTML 1.1 sites using ssl

Bug #1013883 reported by Nicholas Skaggs on 2012-06-15
18
This bug affects 4 people
Affects Status Importance Assigned to Milestone
libio-socket-ssl-perl
Unknown
Unknown
libio-socket-ssl-perl (Ubuntu)
Medium
Unassigned

Bug Description

www::mechanize doesn't allow you to connect to some websites over ssl, if they are in the xhtml 1.1 markup. Instead, it simply times out. I have attached a script demonstrating this. I am running quantal, and noticed my script started timing out and failing to connect after upgrading the libio-socket-ssl-perl package. Downgrading the package from 1.74 to the precise version of 1.53 fixes the issue and the attached script runs, connects to the site and prints the output properly.

Here's the link to 1.53
http://mirrors.us.kernel.org/ubuntu//pool/main/libi/libio-socket-ssl-perl/libio-socket-ssl-perl_1.53-1_all.deb

and 1.74
http://mirrors.us.kernel.org/ubuntu//pool/main/libi/libio-socket-ssl-perl/libio-socket-ssl-perl_1.74-1_all.deb

You should be able to reproduce this on any debian based system (I think).

ProblemType: Bug
DistroRelease: Ubuntu 12.10
Package: libio-socket-ssl-perl 1.74-1
ProcVersionSignature: Ubuntu 3.4.0-5.11-generic 3.4.0
Uname: Linux 3.4.0-5-generic x86_64
NonfreeKernelModules: nvidia
ApportVersion: 2.2.2-0ubuntu2
Architecture: amd64
Date: Fri Jun 15 17:49:03 2012
InstallationMedia: Ubuntu 11.10 "Oneiric Ocelot" - Release amd64 (20111012)
PackageArchitecture: all
SourcePackage: libio-socket-ssl-perl
UpgradeStatus: Upgraded to quantal on 2012-06-08 (7 days ago)

Nicholas Skaggs (nskaggs) wrote :
description: updated
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in libio-socket-ssl-perl (Ubuntu):
status: New → Confirmed
Chris Johnston (cjohnston) wrote :

I can confirm that using the script provided it does timeout. Change to a non-https url and it works.

gregor herrmann (gregoa) wrote :

Also reproducible with

% GET https://online.americanexpress.com/myca/mobl/us/login.do
Can't connect to online.americanexpress.com:443

LWP::Protocol::https::Socket: SSL connect attempt failed with unknown error error:00000000:lib(0):func(0):reason(0) at /usr/share/perl5/LWP/Protocol/http.pm line 51.
%

I just don't have an idea what this wants to tell us ...

But it works fine with random other https URLs, no idea what's different about americanexpress.

Nicholas Skaggs (nskaggs) wrote :

Is there an applicable upstream to send this bug to? CPAN? Which module do we think originates the bug?

On Thu, 21 Jun 2012 20:19:31 -0000, Nicholas Skaggs wrote:

> Is there an applicable upstream to send this bug to? CPAN? Which module
> do we think originates the bug?

Hm, since the error mentions
usr/share/perl5/LWP/Protocol/http.pm
which is in libwww-perl, maybe contacting
https://rt.cpan.org/Public/Dist/Display.html?Name=libwww-perl
might be an option.

Cheers,
gregor

--
 .''`. Homepage: http://info.comodo.priv.at/ - OpenPGP key 0xBB3A68018649AA06
 : :' : Debian GNU/Linux user, admin, and developer - http://www.debian.org/
 `. `' Member of VIBE!AT & SPI, fellow of the Free Software Foundation Europe
   `- NP: U2: Love Rescue Me

Angel Abad (angelabad) on 2012-06-22
Changed in libio-socket-ssl-perl (Ubuntu):
importance: Undecided → Medium
Nicholas Skaggs (nskaggs) wrote :

This bug appears to be fixed in the 1.76 version -- the changelog doesn't mention it being fixed, but the script it is working now.

Sander Smeenk (ubuntu-freshdot) wrote :

Not sure if this is the same thing, but the problem seems to still exist in certain situations:

# GET https://www.bit.nl/
Can't connect to www.bit.nl:443
LWP::Protocol::https::Socket: SSL connect attempt failed with unknown error error:00000000:lib(0):func(0):reason(0) at /usr/share/perl5/LWP/Protocol/http.pm line 51.

Downgrading libio-socket-ssl-perl fixes the issue.

Nicholas Skaggs (nskaggs) wrote :

@Sander, I'd encourage you to respond upstream on this and see what the dev has to say about your issue: http://rt.cpan.org/Ticket/Display.html?id=77956

Steffen Ullrich (sullr-2) wrote :

I cannot reproduce the bug and from the description and reference so perl RT bugs I would suggest, that is has nothing to do with IO::Socket::SSL but is a problem caused with newer openssl versions together with faulty F5 BIG-IP systems (see reference to openssl ticket in perl RT bugreport).

BTW, it would be really helpful if you don't let such bugs sit for a long time in launchpad but instead contact the author of the module. This way you will get faster bugfixes and I get early feedback for problems and can fix them.

Steffen Ullrich, maintainer of IO::Socket::SSL (and clearly stated as such at CPAN)

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.